Bug&Exp - 冷漠 ' Blog - 不求盡如人意,但求無愧於心

Pages: 8/11

First page

Previous page

1 2 3 4 5 6 7 8 9 10 11

Next page

Final page

[ View by Articles | List ]

Qvod Player播放器0day漏洞曝光

[

January 12, 2008 10:54 | by ]

来源：超级巡警
　　一、事件分析：
　　今日，超级巡警团队接到网友举报，称Qvod Player播放器存在漏洞，并发来测试文件。经分析该漏洞发生在Qvod Player的一个activex控件上，当安装了Qvod Player的用户在浏览到黑客精心构造的包含恶意代码的网页后，会下载任意程序在用户系统上以当前

Tags: qvodplayer , 播放器 , 0day , exp , exploit , bug , 漏洞

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1121)

Windows TCP/IP协议栈存在严重远程安全漏洞

[

January 9, 2008 21:58 | by ]

来源:Nsfocus
冷漠PS:今天刚打的补丁,刚才搜索了下,没找到 EXP ,不然又要引起一场风波了.
综述：
======
微软发布了1月份的2篇安全公告，这些公告描述并修复了3个安全漏洞，其中1个漏洞属于“紧急”风险级别。其中MS08-001中修复

Tags: ms08-001 , ms08-002 , bug , 漏洞 , icmp , exp , exploit , 漏洞利用

Bug&Exp | Comments(1) | Trackbacks(0) | Reads(1572)

DivX Player 6.6.0 ActiveX SetPassword() Denial of Service PoC

[

January 3, 2008 09:55 | by ]

<object id="divx" classid="clsid:D050D736-2D21-4723-AD58-5B541FFB6C11" style="display:none;">
</object>

Tags: divx , player6.6.0 , activex

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1043)

迅雷5出现严重0day漏洞

[

December 24, 2007 11:08 | by ]

来源:51CTO
据相关报道，迅雷5出现严重0-Day漏洞，病毒作者可利用该漏洞编写恶意网页，当用于浏览这些网页的时候，就会感染病毒，进而该病毒可以盗窃用户的帐号和密码，从而使用户遭受到损失。

Tags: 迅雷5 , 0day , 漏洞 , exp , exploit , bug

Bug&Exp | Comments(1) | Trackbacks(0) | Reads(1618)

PHP ZLink 0.3 (go.php) Remote SQL Injection Exploit

[

December 24, 2007 09:54 | by ]

#!/usr/bin/perl
use LWP::UserAgent;
use Getopt::Long;

Tags: php , zlink0.3 , sql , injection , exploit , exp

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1444)

OpenSSL < 0.9.7l / 0.9.8d SSLv2 Client Crash Exploit

[

December 24, 2007 09:52 | by ]

#!/usr/bin/perl
# Copyright(c) Beyond Security
# Written by Noam Rathaus - based on beSTORM's SSL Server module

Tags: openssl , < , 0.9.7 , sslv2 , clientexp , exploit

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1012)

zBlog 1.2 Remote SQL Injection Vulnerability

[

December 23, 2007 10:08 | by ]

#########################################################################
zBlog v1.2 Remote SQL Injection Exploit
#########################################################################

Tags: zblog1.2 , sql , injection

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1436)

MS Windows 2000 AS SP4 Message Queue Exploit (MS07-065)

[

December 22, 2007 10:43 | by ]

******************************************************************************
********************** merry christmas Sysadmins *****************************
******************************************************************************

Tags: ms , windows , 2000 , as , sp4 , message , queue , exploit , exp

Bug&Exp | Comments(1) | Trackbacks(0) | Reads(1973)

Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Exploit

[

December 20, 2007 09:56 | by ]

/*
* Copyright (C) 2007-2008 Subreption LLC. All rights reserved.
* Visit http://blog.subreption.com for exploit development notes.

Tags: apple , macosx , exploitexp

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1067)

Linux Kernel < 2.6.11.5 BLUETOOTH Stack Local Root Exploit

[

December 19, 2007 09:56 | by ]

/* LINUX KERNEL < 2.6.11.5 BLUETOOTH STACK LOCAL ROOT EXPLOIT
*
* 19 October 2005

Tags: root , exploit , linux , kernel2.6.11.5

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1283)

利用McAfee Security Center McSubMgr.DLL ActiveX控件远程溢出漏洞网马已出现

[

December 17, 2007 17:42 | by ]

来源:网络巡警
McAfee Security Center McSubMgr.DLL ActiveX控件远程溢出漏洞（McAfee Security Center集中配置GUI远程溢出漏洞）
一个利用McAfee McAfee Security Center McSubMgr.DLL ActiveX控件远程溢出漏洞编写的网页木马已经出现在网络上，含有漏洞溢

Tags: mcafee , security , center , mcsubmgr.dll , activex , 网马 , 漏洞

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1142)

Windows Local Privilege Escalation Vulnerability Exploit(secdrv) for winxp & win2k3

[

December 17, 2007 17:30 | by ]

来源:BlogJava
摘要: secdrv local exp
winxp cn sp2, win2k3 cn sp1 测试通过

Tags: windows , local , privilege , escalation , vulnerability , exploit , secdrvexp

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1745)

ActiveX漏洞通用Exploit

[

December 16, 2007 12:26 | by ]

作者：疯狗
终于在milw0rm找到了一个不错的shellcode，down&exec的，灰常好用！顺手写了一个C测试了下，结果是成功下载并执行了"木马"，muma.exe是我用delphi写的一个简单的执行测试程序，无毒无害。

Tags: activex , exploit , exp

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1221)

WordPress Charset SQL Injection Vulnerability

[

December 12, 2007 11:04 | by ]

Release date: 2007-12-10
Last modified: 2007-12-12
Source: Abel Cheung
Affected version: WordPress <= 2.3.1

Tags: wordpress , sql , injection

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1211)

Nullsoft Winamp 5.32 MP4 tags Stack Overflow Exploit

[

December 9, 2007 11:09 | by ]

#!/bin/perl
#
# Nullsoft Winamp MP4 tags Stack Overflow

Tags: winamp5.32 , mp4 , tags , stack , overflow , exploit , exp

Bug&Exp | Comments(0) | Trackbacks(0) | Reads(1233)

Pages: 8/11

First page

Previous page

1 2 3 4 5 6 7 8 9 10 11

Next page

Final page

[ View by Articles | List ]